News

Emergency Security Patches Released for OpenSSL

June 23, 2014 Security Suite

Emergency security patches have been released to prevent attackers from spying on encrypted SSL/TLS (HTTPS) communications in the OpenSSL cryptographic library as well as stop denial-of-service and remote code execution issues. The most prominent vulnerability, CVE-2014-0224, affects over 20,000 of the Internet’s top 155,000 SSL sites, reports a Qualys® researcher. These HTTPS connections have grown in popularity due to the increased number of connections from mobile devices over insecure wireless networks. A free online testing tool developed by Qualys® can help website administrators test for vulnerability.

News of the Month

Can you imagine a single received MMS could allow hackers to access all your data on your phone? Meet Stagegright, the exploit that is a threat for 950 million smartphones with Android. Vulnerability like this is very dangerous because it does not require any action by the victim - all the hacker needs to compromise your smarthphone is your phone number.